@@MyDFIR but so many tools. Which best ips ids would be best suricata or solarwinds. Edr croudstrik or … lol but job wise learn splink and witeshark and see what ips ids and edr the company uses
@@RandyAinsworth-tx6vn Agreed which is why at the end of the day, a tool is just a tool. Understand the use case and pick one that fits the business budget. As long as a tool can provide visibility, have logging and ability to search within the tool. That is a good tool. To make it a great tool, have responsive capabilities.
Gracias por todo el contenido Nos ayuda mucho a la comunidad de Seguridad defensiva Blue Team. Normalmente en las Redes hay poca informacion. Un abrazo.
Great content. No Tools will cover everything...and are not 100% perfect. You are right when you mention a SIEM is no required...now we have hyperautomation as a "new" trend SIEM killer. Sometimes tools go hand 2 hand with required compliance like hippa, gdpr etc etc.
Really like how you not only covered tools but resources that you can use to get more hands on practice with them whether it’s through investigations or home labs. Also, liked how you brought up the context of it’s great to know the tools but it’s more important to understand the value behind them and when is best to use them. Overall, great explanations and really well done great job!
Great video! I appreciate how you call out the fact that tools are only as good as what you use them for. I’d love to see a video about your way (or various ways you know) of approaching an investigation and the thought process that goes into each step. Keep up the great work!
Thanks! I have something similar coming out which is going through a PCAP. I do like the idea of talking about the thought process. Great suggestion ❤️
Your "Next Steps" page for your mentorship is asking for additional information but there are no input fields. Update: I just received an email. I will respond that way.
Great question, for laptops you really need about 16GB+ RAM and the more the better. I don’t really have a particular brand I recommend, however a lot of my laptops (current & previous) are MSI laptops used for gaming. 😂
SANS needs to hire this man! You have a really concise yet entertaining way of presenting, keep it up!
Haha thank you for the kind words!
Wireshark and splunk and suricata for ips and some through thm
Great choice of tools!
@@MyDFIR but so many tools. Which best ips ids would be best suricata or solarwinds. Edr croudstrik or … lol but job wise learn splink and witeshark and see what ips ids and edr the company uses
@@RandyAinsworth-tx6vn Agreed which is why at the end of the day, a tool is just a tool. Understand the use case and pick one that fits the business budget. As long as a tool can provide visibility, have logging and ability to search within the tool. That is a good tool. To make it a great tool, have responsive capabilities.
❤❤❤❤❤
Gracias por todo el contenido
Nos ayuda mucho a la comunidad de Seguridad defensiva Blue Team. Normalmente en las Redes hay poca informacion.
Un abrazo.
❤❤❤❤❤
Is a lab something I can download to my computer? What labs do you use for a windows based system?
Yeah you can, or you can use sites like cyberdefenders, blue team level one, letsdefend and many others.
Bro great job a lot important info
Thanks a lot!
Kind of surprised to hear Arkime mentioned lol. My uncle helped develop the tool and the Cont3xt tool used within Arkime
Wow! Thats amazing. Arkime is great, it is one of those tools you never thought you needed until you use it haha - Indexed PCAPs ....beautiful
Great content. No Tools will cover everything...and are not 100% perfect. You are right when you mention a SIEM is no required...now we have hyperautomation as a "new" trend SIEM killer. Sometimes tools go hand 2 hand with required compliance like hippa, gdpr etc etc.
Yup, “No Tools will cover everything” love it. ❤️
Thanks for this video.. Been on ur page all night, this the answer I have been looking for
Happy to help! Thanks for watching ❤️ let me know if you have any questions!
Really like how you not only covered tools but resources that you can use to get more hands on practice with them whether it’s through investigations or home labs. Also, liked how you brought up the context of it’s great to know the tools but it’s more important to understand the value behind them and when is best to use them. Overall, great explanations and really well done great job!
Thanks! It’s always about the value, really understanding the WHY use a certain tool and how it functions.
Calmly waiting for a piece on tool for digital forensic/eDiscovery. Thanks for sharing. Been watching from Ghana 🇬🇭 West Africa
Soon 👀 will do a lot more DFIR related videos in the new year
Sir plz do tutorial videos related python for cybersecurity
Anything specific you want to know? Thanks for the suggestion!
@@MyDFIRforensics or threat intelligence gathering with Python would be awesome 💯
Great video! I appreciate how you call out the fact that tools are only as good as what you use them for. I’d love to see a video about your way (or various ways you know) of approaching an investigation and the thought process that goes into each step. Keep up the great work!
Thanks! I have something similar coming out which is going through a PCAP. I do like the idea of talking about the thought process. Great suggestion ❤️
❤❤❤❤❤❤❤❤
Awesome SOC info!!!!
Thank you!!
❤❤❤ best SOC info out there!
Wow, thanks!
Facts! 🔥
thanks for you content bro
My pleasure
Your "Next Steps" page for your mentorship is asking for additional information but there are no input fields. Update: I just received an email. I will respond that way.
Awesome! Thanks for signing up, I’ll go over my emails soon ❤️
You are very good at what you do, and I want to be a SOC Analyst any mentorship available? Please help me.
Yeah! Feel free to sign up on my site mydfir.com
Sir can u please suggest some laptop configurations along with laptop brand for learning and practsing Cybersecurity.
Great question, for laptops you really need about 16GB+ RAM and the more the better. I don’t really have a particular brand I recommend, however a lot of my laptops (current & previous) are MSI laptops used for gaming. 😂
@@MyDFIR Thanks for the Replay sir and can u please share the link of laptop u have currently (MSI laptop link) please kindly share sir
Which graphics card is better NVidia or iris